Does SignalR client send the authentication cookie for each hub request
I'm using signalr core and am expect to be sending and receiving messages with the client frequently over mobile, so I've been trimming off the fat to minimize my message sizes. One thing I've simply been curious about is, when making requests from a hub that requires authentication, does every request sent to the hub also sends it's asp.net core authentication cookie, or does the client only send the cookie once when they initiate their connection to the hub and then all subsequent requests no longer need a cookie?
does every request sent to the hub also sends it's asp.net core authentication cookie, or does the client only send the cookie once when they initiate their connection to the hub and then all subsequent requests no longer need a cookie?
The cookies would be sent with the POST [endpoint-base]/negotiate request that is used to establish a connection between the client and the server, like below.
If a connection is established and the WebSockets transport is used, exchanging messages between server and client would be on WebSockets protocol.
If WebSockets is not available, and Long Polling transport is used, while client communicates with hub, cookies are sent with each request.
Besides, as mentioned in this doc: cookie authentication isn't recommended unless the app only needs to authenticate users from the browser client.
- How to design events and event handlers system using generic in C#?
- Synchronize large csv file into DB with dotnet core
- Sending JSON to C# controller using AJAX gives Count = 0 (.NET 7)
- Injecting DbContext in ASP.NET Core - concrete type or interface?
- ASP.NET Core MVC: How to remove automatic encoding of html tags?
- How do I not exclude charset in Content-Type when using HttpClient?
- How can I write out the contents of objects to a text file?
- Key-per-file config in .NET Core
- Asp.net core razor pages BindProperty collections List not Working
- Set System.Diagnostics.Activity.Current in MS Unit Tests (.NET Core)
- How to hide a property just in post request description of swagger using swashbuckle?
- .Net Core Web API Object naming
- Profiles for debugging multiple projects in Visual Studio 2019
- Selecting profiles with multiple startup projects
- Integration test with WebApplicationFactory fails with ObjectDisposedException for IServiceProvider
- Windows Authentication not working over dev tunnel
- When to close memory streams if they are returned in methods and controllers
- The service collection cannot be modified because it is read-only
- How to add global route prefix in asp.net core 3?
- How to prepend a common prefix to all URLs before the controller in ASP.NET API?
- Global route for all ApiControllers in .Net 6
- Windows authentication in DevTunnels
- Efficiently newing up DbContext without dependency injection
- How can I customize IdentityUser model in .NET Core 8
- Difference in hashing algorithms of .Net Identity and .Net Core Identity
- Blazor server app with Windows Authentication getting 401 unauthorized
- How to show description in Swagger of an IFormFile
- swagger .net core API ambiguous HTTP method for Action Error
- StringValues.Contains() always returns false
- Inject value from middleware into Razor Page HTML body